commit b8a5a4338fbf991999653f47e697c89ce7601bd5

pyrox.dev / nixpkgs

lol

jekyll: Update the dependencies (security, CVE-2021-28834)

This fixes a potential security issue (reported by bundler-audit) by
updating kramdown to 2.3.1 for CVE-2021-28834 [0].

[0]: https://github.com/advisories/GHSA-52p9-v744-mwjj

Michael Weiss 4 years ago b8a5a433 8d3ecb19

+36 -36

4 changed files

expand all

unified split

pkgs

applications

misc

jekyll

basic

Gemfile.lock

gemset.nix

full

Gemfile.lock

gemset.nix

+6 -6

pkgs/applications/misc/jekyll/basic/Gemfile.lock

··· 1 1 GEM 2 2 remote: https://rubygems.org/ 3 3 specs: 4 - activesupport (6.1.3) 4 + activesupport (6.1.3.1) 5 5 concurrent-ruby (~> 1.0, >= 1.0.2) 6 6 i18n (>= 1.6, < 2) 7 7 minitest (>= 5.1) ··· 15 15 eventmachine (>= 0.12.9) 16 16 http_parser.rb (~> 0.6.0) 17 17 eventmachine (1.2.7) 18 - ffi (1.14.2) 18 + ffi (1.15.0) 19 19 forwardable-extended (2.6.0) 20 20 gemoji (3.0.1) 21 21 html-pipeline (2.14.0) 22 22 activesupport (>= 2) 23 23 nokogiri (>= 1.4) 24 24 http_parser.rb (0.6.0) 25 - i18n (1.8.9) 25 + i18n (1.8.10) 26 26 concurrent-ruby (~> 1.0) 27 27 jekyll (4.2.0) 28 28 addressable (~> 2.4) ··· 56 56 gemoji (~> 3.0) 57 57 html-pipeline (~> 2.2) 58 58 jekyll (>= 3.0, < 5.0) 59 - kramdown (2.3.0) 59 + kramdown (2.3.1) 60 60 rexml 61 61 kramdown-parser-gfm (1.1.0) 62 62 kramdown (~> 2.0) 63 63 liquid (4.0.3) 64 - listen (3.4.1) 64 + listen (3.5.1) 65 65 rb-fsevent (~> 0.10, >= 0.10.3) 66 66 rb-inotify (~> 0.9, >= 0.9.10) 67 67 mercenary (0.4.0) 68 68 mini_portile2 (2.5.0) 69 69 minitest (5.14.4) 70 - nokogiri (1.11.1) 70 + nokogiri (1.11.2) 71 71 mini_portile2 (~> 2.5.0) 72 72 racc (~> 1.4) 73 73 pathutil (0.16.2)

+12 -12

pkgs/applications/misc/jekyll/basic/gemset.nix

··· 5 5 platforms = []; 6 6 source = { 7 7 remotes = ["https://rubygems.org"]; 8 - sha256 = "00a4db64g8w5yyk6hzak2nqrmdfvyh5zc9cvnm9gglwbi87ss28h"; 8 + sha256 = "0l0khgrb7zn611xjnmygv5wdxh7wq645f613wldn5397q5w3l9lc"; 9 9 type = "gem"; 10 10 }; 11 - version = "6.1.3"; 11 + version = "6.1.3.1"; 12 12 }; 13 13 addressable = { 14 14 dependencies = ["public_suffix"]; ··· 67 67 platforms = []; 68 68 source = { 69 69 remotes = ["https://rubygems.org"]; 70 - sha256 = "15hgiy09i8ywjihyzyvjvk42ivi3kmy6dm21s5sgg9j7y3h3zkkx"; 70 + sha256 = "0nq1fb3vbfylccwba64zblxy96qznxbys5900wd7gm9bpplmf432"; 71 71 type = "gem"; 72 72 }; 73 - version = "1.14.2"; 73 + version = "1.15.0"; 74 74 }; 75 75 forwardable-extended = { 76 76 groups = ["default"]; ··· 119 119 platforms = []; 120 120 source = { 121 121 remotes = ["https://rubygems.org"]; 122 - sha256 = "08p6b13p99j1rrcrw1l3v0kb9mxbsvy6nk31r8h4rnszdgzpga32"; 122 + sha256 = "0g2fnag935zn2ggm5cn6k4s4xvv53v2givj1j90szmvavlpya96a"; 123 123 type = "gem"; 124 124 }; 125 - version = "1.8.9"; 125 + version = "1.8.10"; 126 126 }; 127 127 jekyll = { 128 128 dependencies = ["addressable" "colorator" "em-websocket" "i18n" "jekyll-sass-converter" "jekyll-watch" "kramdown" "kramdown-parser-gfm" "liquid" "mercenary" "pathutil" "rouge" "safe_yaml" "terminal-table"]; ··· 218 218 platforms = []; 219 219 source = { 220 220 remotes = ["https://rubygems.org"]; 221 - sha256 = "1vmw752c26ny2jwl0npn0gbyqwgz4hdmlpxnsld9qi9xhk5b1qh7"; 221 + sha256 = "0jdbcjv4v7sj888bv3vc6d1dg4ackkh7ywlmn9ln2g9alk7kisar"; 222 222 type = "gem"; 223 223 }; 224 - version = "2.3.0"; 224 + version = "2.3.1"; 225 225 }; 226 226 kramdown-parser-gfm = { 227 227 dependencies = ["kramdown"]; ··· 250 250 platforms = []; 251 251 source = { 252 252 remotes = ["https://rubygems.org"]; 253 - sha256 = "0imzd0cb9vlkc3yggl4rph1v1wm4z9psgs4z6aqsqa5hgf8gr9hj"; 253 + sha256 = "0h2v34xhi30w0d9gfzds2w6v89grq2gkpgvmdj9m8x1ld1845xnj"; 254 254 type = "gem"; 255 255 }; 256 - version = "3.4.1"; 256 + version = "3.5.1"; 257 257 }; 258 258 mercenary = { 259 259 groups = ["default"]; ··· 291 291 platforms = []; 292 292 source = { 293 293 remotes = ["https://rubygems.org"]; 294 - sha256 = "1ajwkqr28hwqbyl1l3czx4a34c88acxywyqp8cjyy0zgsd6sbhj2"; 294 + sha256 = "0b51df8fwadak075cvi17w0nch6qz1r66564qp29qwfj67j9qp0p"; 295 295 type = "gem"; 296 296 }; 297 - version = "1.11.1"; 297 + version = "1.11.2"; 298 298 }; 299 299 pathutil = { 300 300 dependencies = ["forwardable-extended"];

+6 -6

pkgs/applications/misc/jekyll/full/Gemfile.lock

··· 1 1 GEM 2 2 remote: https://rubygems.org/ 3 3 specs: 4 - activesupport (6.1.3) 4 + activesupport (6.1.3.1) 5 5 concurrent-ruby (~> 1.0, >= 1.0.2) 6 6 i18n (>= 1.6, < 2) 7 7 minitest (>= 5.1) ··· 29 29 ruby2_keywords 30 30 faraday-net_http (1.0.1) 31 31 fast-stemmer (1.0.2) 32 - ffi (1.14.2) 32 + ffi (1.15.0) 33 33 forwardable-extended (2.6.0) 34 34 gemoji (3.0.1) 35 35 html-pipeline (2.14.0) 36 36 activesupport (>= 2) 37 37 nokogiri (>= 1.4) 38 38 http_parser.rb (0.6.0) 39 - i18n (1.8.9) 39 + i18n (1.8.10) 40 40 concurrent-ruby (~> 1.0) 41 41 jekyll (4.2.0) 42 42 addressable (~> 2.4) ··· 82 82 gemoji (~> 3.0) 83 83 html-pipeline (~> 2.2) 84 84 jekyll (>= 3.0, < 5.0) 85 - kramdown (2.3.0) 85 + kramdown (2.3.1) 86 86 rexml 87 87 kramdown-parser-gfm (1.1.0) 88 88 kramdown (~> 2.0) ··· 92 92 liquid (4.0.3) 93 93 liquid-c (4.0.0) 94 94 liquid (>= 3.0.0) 95 - listen (3.4.1) 95 + listen (3.5.1) 96 96 rb-fsevent (~> 0.10, >= 0.10.3) 97 97 rb-inotify (~> 0.9, >= 0.9.10) 98 98 mercenary (0.4.0) ··· 102 102 mini_portile2 (2.5.0) 103 103 minitest (5.14.4) 104 104 multipart-post (2.1.1) 105 - nokogiri (1.11.1) 105 + nokogiri (1.11.2) 106 106 mini_portile2 (~> 2.5.0) 107 107 racc (~> 1.4) 108 108 octokit (4.20.0)

+12 -12

pkgs/applications/misc/jekyll/full/gemset.nix

··· 5 5 platforms = []; 6 6 source = { 7 7 remotes = ["https://rubygems.org"]; 8 - sha256 = "00a4db64g8w5yyk6hzak2nqrmdfvyh5zc9cvnm9gglwbi87ss28h"; 8 + sha256 = "0l0khgrb7zn611xjnmygv5wdxh7wq645f613wldn5397q5w3l9lc"; 9 9 type = "gem"; 10 10 }; 11 - version = "6.1.3"; 11 + version = "6.1.3.1"; 12 12 }; 13 13 addressable = { 14 14 dependencies = ["public_suffix"]; ··· 174 174 platforms = []; 175 175 source = { 176 176 remotes = ["https://rubygems.org"]; 177 - sha256 = "15hgiy09i8ywjihyzyvjvk42ivi3kmy6dm21s5sgg9j7y3h3zkkx"; 177 + sha256 = "0nq1fb3vbfylccwba64zblxy96qznxbys5900wd7gm9bpplmf432"; 178 178 type = "gem"; 179 179 }; 180 - version = "1.14.2"; 180 + version = "1.15.0"; 181 181 }; 182 182 forwardable-extended = { 183 183 groups = ["default"]; ··· 226 226 platforms = []; 227 227 source = { 228 228 remotes = ["https://rubygems.org"]; 229 - sha256 = "08p6b13p99j1rrcrw1l3v0kb9mxbsvy6nk31r8h4rnszdgzpga32"; 229 + sha256 = "0g2fnag935zn2ggm5cn6k4s4xvv53v2givj1j90szmvavlpya96a"; 230 230 type = "gem"; 231 231 }; 232 - version = "1.8.9"; 232 + version = "1.8.10"; 233 233 }; 234 234 jekyll = { 235 235 dependencies = ["addressable" "colorator" "em-websocket" "i18n" "jekyll-sass-converter" "jekyll-watch" "kramdown" "kramdown-parser-gfm" "liquid" "mercenary" "pathutil" "rouge" "safe_yaml" "terminal-table"]; ··· 390 390 platforms = []; 391 391 source = { 392 392 remotes = ["https://rubygems.org"]; 393 - sha256 = "1vmw752c26ny2jwl0npn0gbyqwgz4hdmlpxnsld9qi9xhk5b1qh7"; 393 + sha256 = "0jdbcjv4v7sj888bv3vc6d1dg4ackkh7ywlmn9ln2g9alk7kisar"; 394 394 type = "gem"; 395 395 }; 396 - version = "2.3.0"; 396 + version = "2.3.1"; 397 397 }; 398 398 kramdown-parser-gfm = { 399 399 dependencies = ["kramdown"]; ··· 468 468 platforms = []; 469 469 source = { 470 470 remotes = ["https://rubygems.org"]; 471 - sha256 = "0imzd0cb9vlkc3yggl4rph1v1wm4z9psgs4z6aqsqa5hgf8gr9hj"; 471 + sha256 = "0h2v34xhi30w0d9gfzds2w6v89grq2gkpgvmdj9m8x1ld1845xnj"; 472 472 type = "gem"; 473 473 }; 474 - version = "3.4.1"; 474 + version = "3.5.1"; 475 475 }; 476 476 mercenary = { 477 477 groups = ["default"]; ··· 540 540 platforms = []; 541 541 source = { 542 542 remotes = ["https://rubygems.org"]; 543 - sha256 = "1ajwkqr28hwqbyl1l3czx4a34c88acxywyqp8cjyy0zgsd6sbhj2"; 543 + sha256 = "0b51df8fwadak075cvi17w0nch6qz1r66564qp29qwfj67j9qp0p"; 544 544 type = "gem"; 545 545 }; 546 - version = "1.11.1"; 546 + version = "1.11.2"; 547 547 }; 548 548 octokit = { 549 549 dependencies = ["faraday" "sawyer"];